<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">

<html lang="en">

<head>

<meta content="text/html; charset=US-ASCII" http-equiv="Content-Type">

<title>

GitLab

</title>

<style>img {

max-width: 100%; height: auto;

}

</style>

</head>

<body>

<div class="content">

<h3>

Salvatore Bonaccorso pushed to branch master

at <a href="https://salsa.debian.org/security-tracker-team/security-tracker">Debian Security Tracker / security-tracker</a>

</h3>

<h4>

Commits:

</h4>

<ul>

<li>

<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/84001c03167028d5f6fa3e5e422c65a8b9d9ae01">84001c03</a></strong>

<div>

<span>by Salvatore Bonaccorso</span>

<i>at 2019-06-19T19:59:48Z</i>

</div>

<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Expand note on CVE-2019-9917/znc

Every version between 0.096 and 1.7.2 (incl) was affected by this issue

and confirmed as such by upstream developer. The problem is that in

earlier versions though the issue cannot be easily fixed (without a

major rewrite and feature introduction). But fortunately for users a

workaround exists to disble modpython.

</pre>

</li>

</ul>

<h4>1 changed file:</h4>

<ul>

<li class="file-stats">

<a href="#4716ef5aa8f2742228ba3b3633215c8b808565e3">

data/CVE/list

</a>

</li>

</ul>

<h4>Changes:</h4>

<li id="4716ef5aa8f2742228ba3b3633215c8b808565e3">

<a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/84001c03167028d5f6fa3e5e422c65a8b9d9ae01#4716ef5aa8f2742228ba3b3633215c8b808565e3"><strong>data/CVE/list</strong></a>

<hr>

No preview for this file type

<br>

</li>

</div>

<div class="footer" style="margin-top: 10px;">

<p style="font-size: small; color: #777;">

—

<br>

<a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/84001c03167028d5f6fa3e5e422c65a8b9d9ae01">View it on GitLab</a>.

<br>

You're receiving this email because of your account on salsa.debian.org.

If you'd like to receive fewer emails, you can

adjust your notification settings.

<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Commit","url":"https://salsa.debian.org/security-tracker-team/security-tracker/commit/84001c03167028d5f6fa3e5e422c65a8b9d9ae01"}}</script>

</p>

</div>

</body>

</html>